$ rpki-client -vvf rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft File: kCs-s81I0JqgoQybLLKA0KDNLbo.mft (raw, json) Hash identifier: LT3C3erA/hEXfco/puhdd4WuW80hCR2ltCruK6OQ/DM= Subject key identifier: FC:F6:5F:91:B2:93:5F:78:AB:7A:3C:7E:6F:D6:7C:C0:CE:FD:46:3C Authority key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA Certificate issuer: /CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Certificate serial: 0F20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft Manifest number: 0F20 Signing time: Tue 30 Apr 2024 18:28:22 +0000 Manifest this update: Tue 30 Apr 2024 18:28:21 +0000 Manifest next update: Tue 07 May 2024 18:28:21 +0000 Files and hashes: 1: kCs-s81I0JqgoQybLLKA0KDNLbo.crl (hash: aR+ri9Dc2RPbI+/FQdy18pDKLjCRI6mFqL21gboc8+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3872 (0xf20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Validity Not Before: Apr 30 18:28:21 2024 GMT Not After : May 7 18:28:21 2024 GMT Subject: CN=66313845-cf93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:81:dd:58:6b:ba:c1:c9:01:2a:7a:d9:42:bc: 48:e0:fc:81:24:a4:25:dd:d2:12:81:b6:25:d2:ab: ac:a4:8a:1f:42:0a:7a:02:57:8f:d7:ac:21:02:27: 3f:d2:2e:48:7a:66:22:c2:fc:90:37:6c:8b:be:2a: e6:03:bd:b8:9d:66:9f:18:74:3a:a8:fe:5c:ec:d1: 1b:8a:d4:eb:87:8c:cc:ea:db:27:32:fe:22:f4:d9: 8e:db:fa:81:fe:c9:52:c4:a1:e9:8b:59:99:a8:b5: 63:27:39:00:a0:ab:ee:e9:f0:dc:2a:dc:b8:47:72: 61:26:dc:f7:a4:39:84:72:16:0e:0b:bf:65:f6:52: 14:20:bb:71:f1:36:00:b1:33:a4:81:c2:6f:10:90: 55:29:b5:f7:dd:32:0a:cc:a0:47:f9:3d:97:e4:db: fb:10:71:17:2e:10:5f:fe:14:ee:f5:3f:2a:0e:35: e6:ae:63:16:c3:82:c5:d5:91:d3:f0:68:20:2c:4c: 15:2c:0f:bd:64:17:9e:63:30:fe:b4:84:00:8f:d6: cd:ab:2c:e1:42:a0:15:11:3e:3d:3d:1b:0d:42:7a: fd:e2:39:97:1c:9b:09:94:b2:e8:d1:90:56:63:21: 40:38:d6:32:ed:db:8d:45:4c:03:b6:42:d4:7e:fd: 36:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F6:5F:91:B2:93:5F:78:AB:7A:3C:7E:6F:D6:7C:C0:CE:FD:46:3C X509v3 Authority Key Identifier: keyid:90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:fc:a5:19:5b:5c:dc:91:09:62:b6:49:d4:09:78:85:2b:7d: 75:79:06:0f:6a:3e:22:22:94:2f:59:ee:ee:61:57:b2:ca:9e: 5c:71:12:45:ff:06:b9:bc:5d:24:c3:45:19:37:2d:a0:a2:01: 58:ac:72:22:ef:e2:f6:7d:d6:1a:d4:cf:85:0e:53:62:b8:71: fe:62:c7:9b:17:7b:e0:62:92:19:2e:02:b7:a4:94:6d:59:47: 83:17:bf:9d:e2:6b:6e:87:bd:ef:54:ca:7a:a4:75:84:ce:6b: d8:32:0f:7d:12:a3:f8:76:54:52:48:a8:48:f5:10:47:07:7e: 13:0b:f6:a1:25:b5:2d:f1:08:27:26:19:b1:95:fd:58:33:19: a3:98:bc:2a:2c:5f:95:68:33:51:60:2c:c9:e3:db:06:07:f0: b6:f1:8c:88:f6:fe:fa:7d:0c:28:04:d7:d9:a5:e6:d9:99:1d: c6:d9:8c:40:a8:04:e2:91:f2:0a:67:51:07:21:3a:13:80:97: b1:84:ec:d0:47:c2:c6:56:e1:06:6f:57:7d:ea:9d:29:3c:69: df:ff:d7:f4:0c:83:48:0a:db:d7:84:dd:99:f7:c6:51:14:50: 12:76:f6:af:b2:88:04:bc:f7:e0:d1:3f:b8:b9:85:b3:ac:b5: 6b:2d:c2:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExNjExMTAvBgNVBAUTKDkwMkIzRUIzQ0Q0OEQwOUFBMEExMEM5QjJDQjI4MEQw QTBDRDJEQkEwHhcNMjQwNDMwMTgyODIxWhcNMjQwNTA3MTgyODIxWjAYMRYwFAYD VQQDEw02NjMxMzg0NS1jZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04HdWGu6wckBKnrZQrxI4PyBJKQl3dISgbYl0quspIofQgp6AleP16whAic/ 0i5IemYiwvyQN2yLvirmA724nWafGHQ6qP5c7NEbitTrh4zM6tsnMv4i9NmO2/qB /slSxKHpi1mZqLVjJzkAoKvu6fDcKty4R3JhJtz3pDmEchYOC79l9lIUILtx8TYA sTOkgcJvEJBVKbX33TIKzKBH+T2X5Nv7EHEXLhBf/hTu9T8qDjXmrmMWw4LF1ZHT 8GggLEwVLA+9ZBeeYzD+tIQAj9bNqyzhQqAVET49PRsNQnr94jmXHJsJlLLo0ZBW YyFAONYy7duNRUwDtkLUfv02ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPz2X5Gy k194q3o8fm/WfMDO/UY8MB8GA1UdIwQYMBaAFJArPrPNSNCaoKEMmyyygNCgzS26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTE2MS9CMDdCMkFCODRC MTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBKcWdvUXliTExLQTBLRE5M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tDcy1zODFJMEpxZ29ReWJMTEtBMEtETkxiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTE2MS9CMDdCMkFCODRCMTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBK cWdvUXliTExLQTBLRE5MYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK/KUZW1zckQlitknUCXiFK311eQYPaj4iIpQvWe7uYVeyyp5ccRJF /wa5vF0kw0UZNy2gogFYrHIi7+L2fdYa1M+FDlNiuHH+YsebF3vgYpIZLgK3pJRt WUeDF7+d4mtuh73vVMp6pHWEzmvYMg99EqP4dlRSSKhI9RBHB34TC/ahJbUt8Qgn Jhmxlf1YMxmjmLwqLF+VaDNRYCzJ49sGB/C28YyI9v76fQwoBNfZpebZmR3G2YxA qATikfIKZ1EHIToTgJexhOzQR8LGVuEGb1d96p0pPGnf/9f0DINICtvXhN2Z98ZR FFASdvavsogEvPfg0T+4uYWzrLVrLcJb -----END CERTIFICATE-----Generated at Tue Apr 30 21:37:58 2024 by rpki-client on console-fra.rpki-client.org